AWS SWF child workflow can't schedule lambda task

Question

SWF child workflows fail to schedule lambda tasks even though they are created with a role with access to lambda. Task fail with the error below.

ASSUME_ROLE_FAILED

Could you add some context, more details about your errors, etc... — XavM, Oct 11 '16 at 16:56
Hey XavM, thank you for the response. I just sorted out what had gone wrong. I had not allow "iam:PassRole" on the user calling the swf api. — Asanka, Oct 11 '16 at 17:57

score 1 · Accepted Answer · answered Oct 11 '16 at 18:02

1

After hours of debugging I sorted out what was the issue.

User accessing the swf api need permission to perform action "iam:PassRole". Got it working using the policy below.

{
"Version": "2012-10-17",
"Statement": [
    {
        "Sid": "Stmt14762077XXXXX",
        "Effect": "Allow",
        "Action": [
            "iam:PassRole"
        ],
        "Resource": [
            "arn:aws:iam::XXXXXXXXX:role/XXXXXXRole"
        ]
    }
]
}

answered Oct 11 '16 at 18:02

Asanka

429
3
10

XavM, thanks for reminding. I was waiting for the two hours countdown – Asanka Oct 14 '16 at 01:40

AWS SWF child workflow can't schedule lambda task

1 Answers1